GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,464
Composer 5,137
Erlang 40
GitHub Actions 38
Go 2,831
Maven 6,209
npm 4,462
NuGet 775
pip 4,226
Pub 12
RubyGems 972
Rust 1,093
Swift 47

Unreviewed advisories

All unreviewed 285,932

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

147,902 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was determined in Open5GS up to 2.7.6. This affects the function... Moderate Unreviewed

CVE-2025-15530 was published Jan 17, 2026

The PAYGENT for WooCommerce plugin for WordPress is vulnerable to Missing Authorization in all... Moderate Unreviewed

CVE-2025-14078 was published Jan 17, 2026

The CubeWP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's... Moderate Unreviewed

CVE-2025-8615 was published Jan 17, 2026

The Integrate Dynamics 365 CRM plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2026-0725 was published Jan 17, 2026

The Advanced Ads – Ad Manager & AdSense plugin for WordPress is vulnerable to SQL Injection via... Moderate Unreviewed

CVE-2025-12984 was published Jan 17, 2026

The CubeWP – All-in-One Dynamic Content Framework plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12129 was published Jan 17, 2026

The CM E-Mail Blacklist – Simple email filtering for safer registration plugin for WordPress is... Moderate Unreviewed

CVE-2026-0691 was published Jan 17, 2026

The Spin Wheel plugin for WordPress is vulnerable to client-side prize manipulation in all... Moderate Unreviewed

CVE-2026-0808 was published Jan 17, 2026

The Team Section Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2026-0833 was published Jan 17, 2026

The RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2026-0820 was published Jan 17, 2026

The Phrase TMS Integration for WordPress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-12168 was published Jan 17, 2026

The User Registration Using Contact Form 7 plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-12825 was published Jan 17, 2026

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for... Moderate Unreviewed

CVE-2025-13725 was published Jan 17, 2026

The Community Events plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2025-14029 was published Jan 17, 2026

The Payment Button for PayPal plugin for WordPress is vulnerable to unauthorized order creation... Moderate Unreviewed

CVE-2025-14463 was published Jan 17, 2026

In Secure Access 12.70 and prior to 14.20, the logging subsystem may write an unredacted... Moderate Unreviewed

CVE-2026-0519 was published Jan 17, 2026

The Feeds for YouTube Pro plugin for WordPress is vulnerable to arbitrary file read in all... Moderate Unreviewed

CVE-2025-12002 was published Jan 17, 2026

The Quick Contact Form plugin for WordPress is vulnerable to Open Mail Relay in all versions up... Moderate Unreviewed

CVE-2025-12718 was published Jan 17, 2026

CVE-2026-0518 is a cross-site scripting vulnerability in versions of Secure Access prior to 14... Moderate Unreviewed

CVE-2026-0518 was published Jan 17, 2026

The Filr – Secure document library plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-14632 was published Jan 17, 2026

The Wallet System for WooCommerce plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2025-14450 was published Jan 17, 2026

The WP Hotel Booking plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2025-14075 was published Jan 17, 2026

CVE-2026-0517 is a denial-of-service vulnerability in versions of Secure Access Server prior to... Moderate Unreviewed

CVE-2026-0517 was published Jan 17, 2026

Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Management Software 7.0... Moderate Unreviewed

CVE-2025-56451 was published Jan 17, 2026

Microsoft Edge Elevation Service exposes a privileged COM interface that inadequately validates... Moderate Unreviewed

CVE-2026-21223 was published Jan 17, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

147,902 advisories